From owner-freebsd-questions Thu Oct 24 16:41:29 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 94EAC37B401 for ; Thu, 24 Oct 2002 16:41:27 -0700 (PDT) Received: from heimat.alanmckay.com (heimat.alanmckay.com [207.164.198.56]) by mx1.FreeBSD.org (Postfix) with ESMTP id 088BF43E65 for ; Thu, 24 Oct 2002 16:41:27 -0700 (PDT) (envelope-from amckay@neap.net) Received: by heimat.alanmckay.com (Postfix, from userid 900) id 722B4FDE0; Thu, 24 Oct 2002 19:41:26 -0400 (EDT) Received: from 172.30.99.112 ( [172.30.99.112]) as user amckay@localhost by secure.neap.net with HTTP; Thu, 24 Oct 2002 19:41:26 -0400 Message-ID: <1035502886.3db8852641f86@secure.neap.net> Date: Thu, 24 Oct 2002 19:41:26 -0400 From: Alan McKay To: freebsd-questions@freebsd.org Subject: help with webcam through natd + ipfw MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit User-Agent: Internet Messaging Program (IMP) 3.1 X-Originating-IP: 172.30.99.112 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Folks, I've done port-forwarding before on several different FW/NAT devices, but damned if I can get it going on FreeBSD. At first I tried with PPP's builtin NAT, and when that failed I switched to natd. I did google searches and even searched the FreeBSD list archives but did not find any help. /etc/natd.conf looks like this (private IP removed) : interface tun0 port 8668 use_sockets yes dynamic yes redirect_port tcp :8080 8080 /etc/rc.conf has this : firewall_type="SIMPLE" firewall_enable="YES" firewall_script="/etc/rc.firewall" firewall_quiet="NO" natd_enable="YES" natd_program="/sbin/natd" natd_interface="tun0" natd_flags="-f /etc/natd.conf" My firewall does not have much changed from the SIMPLE template. I allow a few incoming connections including ports 80, 443, 53, 110 and the port I want to foward back to my webcam : 8080. nat itself works fine (machines behind the FW can surf and such) but the port forwarding is not working. I tried adding a rule 50 to allow everything on the ipfw, and that didn't work. Then I thought maybe the 'allow all' should do right after the divert to natd so I deleted 50 and added the add all rule right after divert. Still nothing! I'm testing by VPN'ing into work, VNC'ing into my desktop, and trying to connect back from there. Help! What's up? Oh, FreeBSD 4.5 release (stable, whatever it's called, I don't much around with beta stuff) cheers, -Alan -- http://www.bodensatz.com/ The Beer Site ™ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message